Vulnerabilities dubbed “Trackmageddon” were discovered in online services of (GPS) location tracking devices. The vulnerabilities could allow third parties unauthorized access to location data of all location tracking devices managed by a vulnerable online service. Other types of data impacted include, serial number (i.e., IMEI), assigned phone number, model/type name and custom assigned names. The latter two …
Internet of Things (IoT)
Researchers at Trustwave performed a deep dive analysis of BrickerBot malware code to discover potential 0day vulnerabilities or lessons learned to help improve Internet of Things (IoT) security.
More and more users are buying easier to use internet-connected devices and apps that control them. The increase in popularity of Internet of Things (IoT) devices are a prime target for attackers given the security issues that often come with them.
Security researchers spotted an increase in new activity from the Mirai IoT botnet. This new campaign targets organizations in Argentina, but has spread to other parts of South America and North Africa.
Researchers from Qihoo 360 Netlab have reported a big uptick in botnet activity targeting internet connected devices made by ZyXEL Communications.
Security researchers have disclosed multiple Bluetooth vulnerabilities that could threaten billions of smartphones from Android and Apple and millions of Internet of Things (IoT) devices, such as smart TVs, printers and others that may use the Bluetooth wireless protocol.
In a recent cyber threat report, McAfee provided some good intelligence on how cybercriminals use Mirai attacks to infect poorly configured Internet of Things (IoT) devices and turn them into bots used for large scale network attacks.
The Verizon security team recently announced the first Data Breach Digest, a series of 18 cybercrime cases the team investigated. The Verizon team starts with a sneak peek of one of the case studies that describes how a university was attacked by an IoT botnet consisting of over 5,000 infected hosts. The study concludes with 12 good lessons learned from the attack.
To help organizations prepare for Internet of Things (IoT) threats, we outline some key security recommendations for IoT authorization, authentication and access control.
Security firm Sucuri warned back in June how compromised CCTV devices were used in multiple denial-of-service (DDoS) attacks every day. In the report, nearly 25,000 compromised devices from all over the world were used in various attacks on small businesses.